Re: knfsd and system crashes

Steven S. Dick (ssd@nevets.oau.org)
Sat, 15 Nov 1997 10:40:56 -0500 (EST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Dima Brodsky: "Network changes for 2.1.xx"
Previous message: Alan Cox: "Re: Problems with unknown PCI devices (solution)"
In reply to: Brian Gerst: "Re: cat went missing V2.1.63"

Martin von Loewis writes:
>> Or am I just silly in thinking that a server exporting NFS partitions
>> has any semblance of security?
>
>In essence, yes.
[...]
>If the user on the client machine can make up file handles, she can
>also make up user ids.

That's true, and isn't very useful to prevent.

But what if they generate filehandles for inodes not under the exported
directory tree? Do we still not care? Is every part (exported or not)
of every exported filesystem open to this?

Steve

Next message: Dima Brodsky: "Network changes for 2.1.xx"
Previous message: Alan Cox: "Re: Problems with unknown PCI devices (solution)"
In reply to: Brian Gerst: "Re: cat went missing V2.1.63"